Re: ipchains

To: Chris Gray <cgray@nowonder.com>
Cc: debian-user@lists.debian.org
Subject: Re: ipchains
From: Rev GRC Sperry <flubber@xmission.com>
Date: Sat, 4 Mar 2000 22:37:12 -0700
Message-id: <[🔎] 20000304223712.A22301@xmission.com>
In-reply-to: <[🔎] 20000304224014.A9100@nowonder.com>; from cgray@nowonder.com on Sat, Mar 04, 2000 at 10:40:14PM -0500
References: <[🔎] 20000304224014.A9100@nowonder.com>

Here is a web page with info about most port numbers, which can be quite
helpful when setting up firewalls:
http://www.con.wesleyan.edu/~triemer/network/docservs.html

This site tries to have helpful guides that make more sense to non-geeks:
http://www.linuxhelp.net/guides/

Here is a webpage for generating a script for ipfwadm that might be useful
for you:
http://members.tripod.com/~robel/dni/

I've been messing around with iptables myself and haven't been able to
find any resources for firewall newbs. I really shouldn't complain since
it's only in the development kernel (2.3.x) but I'd rather learn the
latest firewall tools since I'm ready to learn about firewalling now, if
that makes sense. Well, if anyone could point me to a site about iptables
that caters to those of us with IQs under 150, I'd appreciate it.  ;-j

-Grant

* Chris Gray (cgray@nowonder.com) [000304 20:39] penned:
> Hi.
> 
> This should be easy, but I just can't figure out how to do it.  All I
> want is to be able to set up a firewall where everything is disabled
> except that I can browse the internet and send/receive email.  I'm
> running some network stuff, but it does not need to be seen by anyone
> else but me.  I thought this would work:
> 
> ipchains -P input DENY
> ipchains -A input -s localhost -j ACCEPT
> 
> but now I can't browse on outside networks.  So I guess I need to run
> a proxy, right?  So I downloaded squid, and have it so that I can
> browse my local network, but it still can't get connections to outside
> networks.  
> 
> Could someone please tell me why this isn't working?  Why does the
> outside net need to connect to my box so that I can browse?  If there
> is a web page that explains things at a little lower level than the
> howtos I'd appreciate that address as well.
> 
> Cheers,
> Chris Gray
> 
> P.S. Other (possibly less relevant) info:  for email I'm using
> fetchmail and exim.  For the kernel I'm using 2.2.14.  For browsing
> I'm using Netscape 4.7.
> 
> -- 
> The reason that every major university maintains a department of
> mathematics is that it's cheaper than institutionalizing all those people.
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
> 

-- 
-Grant

````````````````````````````````````oio`````````````````````````````````````
     "They do not apprehend how being at variance it agrees with itself."
                                                            --Heraclitus
````````````````````````````````````ioi`````````````````````````````````````

Reply to:

References:
- ipchains
  - From: Chris Gray <cgray@nowonder.com>

Prev by Date: Re: 2.1 Installation and Backpack CD-Rom
Next by Date: Re: VMware, and acceleratedX
Previous by thread: ipchains
Next by thread: Re: ipchains
Index(es):
- Date
- Thread